This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e3133302e3130362e302f32342d3234203d3e20383334.roa File: 34352e3133302e3130362e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: 74tj46JMNqBj+bwy2OFPHIHk9AsY8Hnw5BDeZjbv78g= Subject key identifier: 34:20:DB:D1:DC:83:F7:77:81:03:2A:55:96:8F:09:46:E6:FA:DB:0E Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Certificate serial: 1FE3D95942A691EBBA4EB8E9E79DAA7B53BB6FEC Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e3133302e3130362e302f32342d3234203d3e20383334.roa Signing time: Fri 28 Nov 2025 11:49:40 +0000 ROA not before: Fri 28 Nov 2025 11:44:40 +0000 ROA not after: Fri 27 Nov 2026 11:49:40 +0000 asID: 834 IP address blocks: 45.130.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 08:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:e3:d9:59:42:a6:91:eb:ba:4e:b8:e9:e7:9d:aa:7b:53:bb:6f:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959 Validity Not Before: Nov 28 11:44:40 2025 GMT Not After : Nov 27 11:49:40 2026 GMT Subject: CN=3420DBD1DC83F77781032A55968F0946E6FADB0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7b:28:4e:3c:9f:23:16:04:07:7d:ee:fd:7b: 12:91:62:8d:46:0e:51:9f:fc:07:be:dc:89:8d:fe: 24:68:19:38:e6:21:17:66:96:21:35:f9:39:83:3e: b0:67:56:ba:6a:23:c1:8e:6f:62:d0:18:23:ee:b6: 05:39:15:5b:d4:a8:fe:db:0c:ac:d1:e2:de:96:b8: 8c:ba:e5:e0:3c:81:09:f4:a8:67:5c:66:00:d2:76: ca:6c:f7:20:42:80:12:14:39:d4:be:50:1a:14:74: 15:77:f9:d0:f5:5c:9b:2f:98:b0:b4:08:71:35:b7: 21:76:82:8b:e4:c6:7f:f1:fa:16:2c:de:ce:ab:d9: 2d:01:98:bf:d6:55:89:07:af:c6:06:50:16:3d:0a: ac:bc:23:1f:26:15:e0:0d:6a:1f:f3:a2:56:68:8d: 40:b2:6c:d5:33:c5:dc:87:ca:f9:92:98:b2:d0:42: 86:6b:fb:98:de:27:ad:b1:43:e5:8b:9f:5d:7d:f4: 20:20:64:ac:3a:77:c8:63:0a:d6:09:b0:2f:1b:41: bd:9a:d0:b0:1c:40:2d:38:a4:2e:52:73:14:bc:af: 6e:9c:6d:8c:63:11:b5:a3:2b:55:80:d0:52:28:04: 8f:34:e5:be:00:6f:8b:ef:ed:9b:89:4d:7f:86:13: ff:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:20:DB:D1:DC:83:F7:77:81:03:2A:55:96:8F:09:46:E6:FA:DB:0E X509v3 Authority Key Identifier: keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e3133302e3130362e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.130.106.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:85:59:9d:42:5a:24:ef:36:c3:76:27:ca:c5:e3:0b:d8:db: ca:df:f7:61:aa:4f:80:fa:2c:16:35:3a:53:84:e5:33:a7:7b: ed:54:0d:8c:93:c9:ce:db:b0:4b:65:18:e3:29:6c:6e:99:18: 81:db:40:27:9f:d6:68:47:b8:20:3d:23:70:c8:42:b9:c3:b9: 5f:0d:1d:14:2f:35:58:5f:e2:ec:ab:c4:99:4d:cf:95:87:44: 75:f5:b9:50:ba:ec:ac:e4:8d:68:c2:92:46:5f:f9:e9:26:a3: 00:6a:c9:7c:c7:5e:9d:ff:bf:b3:9f:18:65:20:45:ac:9e:82: 74:aa:c7:2a:1f:4e:57:ba:2b:c2:50:eb:83:bf:c4:6e:55:e9: 9a:04:34:20:b2:a6:43:0e:c8:72:db:12:4f:12:56:82:67:b2: b7:57:1a:3d:d1:47:f4:86:9f:bd:47:cc:2c:06:58:81:f8:9b: 09:0a:b4:bf:e1:b6:2a:48:81:32:30:80:6b:60:21:54:ac:75: 8b:67:b5:16:c8:63:49:75:65:61:08:73:4c:28:73:dc:52:f9: f3:95:5a:06:81:53:9e:d9:db:e0:64:c6:85:77:62:3e:18:e1: 64:ad:ce:60:00:6d:01:b3:a5:78:b1:01:76:6f:4f:1c:08:0e: f8:52:51:81 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUH+PZWUKmkeu6Trjp552qe1O7b+wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi YmUzYTk1OTAeFw0yNTExMjgxMTQ0NDBaFw0yNjExMjcxMTQ5NDBaMDMxMTAvBgNV BAMTKDM0MjBEQkQxREM4M0Y3Nzc4MTAzMkE1NTk2OEYwOTQ2RTZGQURCMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCeyhOPJ8jFgQHfe79exKRYo1G DlGf/Ae+3ImN/iRoGTjmIRdmliE1+TmDPrBnVrpqI8GOb2LQGCPutgU5FVvUqP7b DKzR4t6WuIy65eA8gQn0qGdcZgDSdsps9yBCgBIUOdS+UBoUdBV3+dD1XJsvmLC0 CHE1tyF2govkxn/x+hYs3s6r2S0BmL/WVYkHr8YGUBY9Cqy8Ix8mFeANah/zolZo jUCybNUzxdyHyvmSmLLQQoZr+5jeJ62xQ+WLn1199CAgZKw6d8hjCtYJsC8bQb2a 0LAcQC04pC5ScxS8r26cbYxjEbWjK1WA0FIoBI805b4Ab4vv7ZuJTX+GE/9pAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUNCDb0dyD93eBAypVlo8JRub62w4wHwYDVR0j BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1 OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5 bzd2anFWay5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3Jz eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4 YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zNDM1MmUzMTMzMzAy ZTMxMzAzNjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AC2CajANBgkqhkiG9w0BAQsFAAOCAQEAKoVZnUJaJO82w3YnysXjC9jbyt/3YapP gPosFjU6U4TlM6d77VQNjJPJztuwS2UY4ylsbpkYgdtAJ5/WaEe4ID0jcMhCucO5 Xw0dFC81WF/i7KvEmU3PlYdEdfW5ULrsrOSNaMKSRl/56SajAGrJfMdenf+/s58Y ZSBFrJ6CdKrHKh9OV7orwlDrg7/EblXpmgQ0ILKmQw7IctsSTxJWgmeyt1caPdFH 9IafvUfMLAZYgfibCQq0v+G2KkiBMjCAa2AhVKx1i2e1FshjSXVlYQhzTChz3FL5 85VaBoFTntnb4GTGhXdiPhjhZK3OYABtAbOleLEBdm9PHAgO+FJRgQ== -----END CERTIFICATE-----Generated at Sat Dec 6 22:57:20 2025 by rpki-client